Training Objectives

By the end of the programme, participants will be able to:

• Understand the basic Definitions of the GDPR
• Comprehend the needs for businesses and organisations defined in the GDPR
• Define what are personal data according to the GDPR
• Acknowledge the importance of compliance with the GDPR
• Understand the basic principles of GDPR compliance

Training Outline

Data Protection Policies 

• Purpose of the Data Protection and Privacy Policies within an Organization
• Data Protection by Design and by Default

Managing and Organizing Data Protection

• Privacy Information Management System (PIMS)

Roles of the Controller, Processor and Data Protection Officer (DPO) 

• Roles of the Controller and Processor
• Role and Responsibilities of a DPO

Data Protection Impact Assessment (DPIA) 

• Criteria for a DPIA
• Steps of a DPIA

Data Breaches, Notification and Incident Response 

• GDPR Requirements with Regard to Personal Data Breaches
• Requirements for Notification

The course sessions will include:

• Practical questions and examples
• Practical exercises and discussions
• Practice tests that are like the Certification Exam

Who Should Attend

EXIN Privacy & Data Protection Professional Certification is ideal for: Data Protection Officers (DPOs), Privacy Officers, Legal / Compliance Officers, Security Officers, Business Continuity Managers, Data Controllers, Data Protection Auditors (internal and external) and HR managers.

As this is an advanced-level certification, it is advisable to have passed EXIN Privacy and Data Protection Foundation or have attended other similar type of courses or certifications before taking this exam.

CPD Recognition

This programme may be approved for up to 21 CPD units in GDPR. Eligibility criteria and CPD Units are verified directly by your association, regulator or other bodies which you hold membership.

The course has been approved and verified by the Cyprus Bar Association (CyBAR). The Summary of CyBAR’s Updated CPD Guidelines Based on the Operational Framework of the Cyprus Bar Association (CBA) Academy can be found here.

Course Bundle

Register to both the EXIN Foundation and Professional Certificate training courses at EIMF and enjoy a special discount.

Certification and Exam

The exam fee is included in the total course price. If you choose to take the exam at our exam centre you will need to inform us, so we can make necessary arrangements.

EIMF, as an EXIN Accredited Training Provider and Exam Centre, is offering preparation courses and examinations to become a Privacy & Data Protection Professional.

EXIN Anywhere | EXIN Anywhere lets you take the exam for your certification online. This means taking your exam at a time and location convenient to you. So this can be at home, in a meeting room at the office or in any other secluded space where else you feel comfortable. The only conditions are that you have an internet connection, a laptop that meets the requirements and that there is no one else in the room with you. Learn more

• Examination type: Multiple-choice questions
• Number of questions: 40
• Pass mark: 65% (26/40)
• Open book
• Notes: No
• Training mandatory: Yes
• Electronic equipment/aides permitted: No
• Exam duration: 120 minutes
• Exam fee is subject to change at any time at EXIN’s discretion and without prior notice. Accordingly, EIMF will charge candidates based on the applicable fees in effect at the time of registration.”
• Any discount applies only to the course fee (€780).

The Rules and Regulations for EXIN’s examinations apply to this exam.

Download Exam Syllabus here

Course and exam fees are subject to change at any time at EXIN’s discretion and without prior notice. Accordingly, EIMF will charge candidates based on the applicable fees in effect at the time of registration

Certified EXIN Data Protection Officer (DPO) Career Path Option

1. EXIN Privacy & Data Protection Foundation (mandatory)

2. EXIN Information Security Foundation based on ISO/IEC 27001*

3. EXIN Privacy & Data Protection Professional (mandatory)

* EXIN Information Security Foundation: This can be from an external party. If you currently hold the Certification of Information Privacy Professional (CIPP) from IAPP or the ISO/IEC 27001:2022 Foundation certification from PECB you can fast-track your path to becoming an EXIN Data Protection Officer. These certifications can replace the EXIN Privacy & Data Protection Foundation certificate. For information  click here.

For more information please click the following links: ΕΧΙΝ Data Protection Officer | EXIN DPO Career Path

In-house Training

For groups within the same organisation, this course may be customized to meet any specific needs and delivered in-house.